First published: Sun Oct 08 2023(Updated: )
In FW-PackageManager, there is a possible missing permission check. This could lead to local escalation of privilege with System execution privileges needed
Credit: security@unisoc.com security@unisoc.com
Affected Software | Affected Version | How to fix |
---|---|---|
Google Android | =11.0 | |
Unisoc S8000 | ||
Unisoc Sc7731e | ||
Unisoc Sc9832e | ||
Unisoc Sc9863a | ||
Unisoc T310 | ||
Unisoc T606 | ||
Unisoc T610 | ||
Unisoc T612 | ||
Unisoc T616 | ||
Unisoc T618 | ||
Unisoc T760 | ||
Unisoc T770 | ||
Unisoc T820 | ||
All of | ||
Google Android | =11.0 | |
Any of | ||
Unisoc S8000 | ||
Unisoc Sc7731e | ||
Unisoc Sc9832e | ||
Unisoc Sc9863a | ||
Unisoc T310 | ||
Unisoc T606 | ||
Unisoc T610 | ||
Unisoc T612 | ||
Unisoc T616 | ||
Unisoc T618 | ||
Unisoc T760 | ||
Unisoc T770 | ||
Unisoc T820 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2023-40654 is medium.
The affected software for CVE-2023-40654 is Google Android 11.0.
The vulnerability type of CVE-2023-40654 is local escalation of privilege.
A fix for CVE-2023-40654 has not yet been released. It is recommended to follow the vendor's security advisory for updates.
More information about CVE-2023-40654 can be found at the following reference link: [https://www.unisoc.com/en_us/secy/announcementDetail/1707266966118531074](https://www.unisoc.com/en_us/secy/announcementDetail/1707266966118531074)